Spammers use photohosting to disguise links
Experts from MessageLabs warn of a new clever trick that spammers have included in their arsenal. They host malicious SWF files on well-known hostings like ImageShack, where Flash animation is allowed. Experience shows that the victim is much easier to lure to the site, which she considers safe.
You can redirect the user's flash from this page to another site, where the infection of his computer takes place. For example, when loading a page, you can show the user a window with a message about the need to download a codec to view this “media file”. The user clicks "OK" - and it's done.
This type of attack appeared quite recently, but experts predict that it may spread widely in the near future. Anti-spam companies have no effective way to block such links in email traffic. The same MessageLabs daily detects about 3000 malicious sites and blocks links to them, but they cannot filter links to ImageShack and similar services.
You can redirect the user's flash from this page to another site, where the infection of his computer takes place. For example, when loading a page, you can show the user a window with a message about the need to download a codec to view this “media file”. The user clicks "OK" - and it's done.
This type of attack appeared quite recently, but experts predict that it may spread widely in the near future. Anti-spam companies have no effective way to block such links in email traffic. The same MessageLabs daily detects about 3000 malicious sites and blocks links to them, but they cannot filter links to ImageShack and similar services.
')
Source: https://habr.com/ru/post/38972/
All Articles